diff --git a/umbraco-cloud/SUMMARY.md b/umbraco-cloud/SUMMARY.md index 12fe4b09d94..58674533432 100644 --- a/umbraco-cloud/SUMMARY.md +++ b/umbraco-cloud/SUMMARY.md @@ -159,6 +159,7 @@ ## Release Notes * [Overview 2025](release-notes/overview-2025/overview-2025.md) + * [September 3, 2025](release-notes/overview-2025/2025-09-03-releasenotes.md) * [June 2025](release-notes/overview-2025/2025-06-releasenotes.md) * [May 2025](release-notes/overview-2025/2025-05-releasenotes.md) * [April 2025](release-notes/overview-2025/2025-04-releasenotes.md) diff --git a/umbraco-cloud/release-notes/images/security-settings.png b/umbraco-cloud/release-notes/images/security-settings.png new file mode 100644 index 00000000000..a35ac76fa4d Binary files /dev/null and b/umbraco-cloud/release-notes/images/security-settings.png differ diff --git a/umbraco-cloud/release-notes/overview-2025/2025-09-03-releasenotes.md b/umbraco-cloud/release-notes/overview-2025/2025-09-03-releasenotes.md new file mode 100644 index 00000000000..2ec66d07c12 --- /dev/null +++ b/umbraco-cloud/release-notes/overview-2025/2025-09-03-releasenotes.md @@ -0,0 +1,50 @@ +# September 3, 2025 + +## Key Takeaways + +* **Hostname Pre-Validation** – Add and validate hostnames before switching DNS, enabling zero-downtime migrations and support for on-premise proxies. +* **Managed Challenges** – Protect projects from malicious traffic surges with automated verification based on request geography or attack likelihood. +* **Custom Identity Provider (Public Beta)** – Use your existing identity provider for Cloud Portal access, permissions, and user management. + +## Hostname Pre-Validation + +### Move your site to Umbraco Cloud with zero downtime. Hostname Pre-Validation makes hostname migrations smooth and risk-free + +Pre-validating hostnames allows you to prepare domains before pointing DNS to Umbraco Cloud. This ensures TLS certificates are issued and routing is active ahead of time, so projects can go live instantly once DNS is updated. + +* **Zero-downtime hostname migration** – Move production domains to Umbraco Cloud without service interruptions. +* **On-premise proxy support** – Keep using your existing proxy or Web Application Firewall (WAF) setup while preparing hostnames in Umbraco Cloud. + +
A screenshot of the Pre-Validation status modal
+ +This means safer go-lives and improved domain management. See the [Hostname Pre-Validation documentation](../../go-live/manage-hostnames/hostname-pre-validation.md) for a full overview of how to use the feature. + +## Managed Challenges + +### Managed Challenges keep bots out and let your real users in + +When websites face unusual load, whether from bots, scraping, or coordinated attacks, Managed Challenges step in. Requests that do not meet the threshold are automatically served a lightweight CAPTCHA that helps filter out bad traffic. + +* Can be applied globally, per hostname, or even per continent. +* Works seamlessly alongside the built-in WAF. + +WAF sensitivity and Manage Challenge features can be applied in Security Settings: +
A screenshot of the Security Settings with the new features for Managed Challenges
+ +You get added resilience without manual intervention and tools to ensure resources are spent serving customers, not malicious requests. Read more about the new features in the updated [Managing Transport Security documentation](../../build-and-customize-your-solution/set-up-your-project/security/managing-transport-security.md) + +## Custom Identity Provider (Public Beta) + +### Use your own identity provider to manage Cloud Portal access + +You can now connect identity providers, like Microsoft Entra ID, Octa, or Google, directly to your Umbraco Cloud organization. This lets team members sign in with familiar credentials and manage project permissions through their existing setup. + +* Centralized authentication with OpenID Connect. +* Map roles and project access directly from your provider. +* Keep audit logs of external login usage. + +
+ +Enterprises and organizations can rely on centralized account management with industry-standard security. This means less time spent managing accounts and permissions, whether you're onboarding or offboarding. + +Custom Identity Providers for Cloud organizations is currently in Public Beta, and we aim for full release early October. If you have any feedback or encounter issues with the feature, reach out to us on [beta-cloud-portal-login-providers@umbraco.dk](mailto:beta-cloud-portal-login-providers@umbraco.dk). For a full overview of the features and how to use them, see the [Organization Login Providers documentation](../../begin-your-cloud-journey/the-cloud-portal/organizations/organization-login-providers.md). \ No newline at end of file diff --git a/umbraco-cloud/release-notes/overview-2025/overview-2025.md b/umbraco-cloud/release-notes/overview-2025/overview-2025.md index 0ca94483783..ddde092868b 100644 --- a/umbraco-cloud/release-notes/overview-2025/overview-2025.md +++ b/umbraco-cloud/release-notes/overview-2025/overview-2025.md @@ -4,6 +4,11 @@ description: Get an overview of the release notes for each month in 2025. # Overview 2025 +## [September 3, 2025](2025-09-03-releasenotes.md) +* **Hostname Pre-Validation** – Add and validate hostnames before switching DNS, enabling zero-downtime migrations and support for on-premise proxies. +* **Managed Challenges** – Protect projects from malicious traffic surges with automated verification. +* **Custom Identity Provider (Public Beta)** – Use your existing identity provider for Cloud Portal access, permissions, and organization management. + ## [June 2025](2025-06-releasenotes.md) * **Hostname Monitoring** – Get notified when your hostnames do not behave as expected, directly from the Cloud Portal. * **CI/CD v2 with target environment support** – You can now specify a development or flexible environment by name when deploying from pipelines.